Method and corresponding proxy server, system, computer-readable storage medium and computer program

US 10,453,063 B2
Filed: 02/05/2015
Issued: 10/22/2019
Est. Priority Date: 02/06/2014
Status: Active Grant

First Claim

Patent Images

1. A method performed using a proxy server communicating between a first merchant computing device, a second merchant computing device, a first issuer computing device, and a second issuer computing device, the method comprising:

receiving a first payment request message at the proxy server from the first merchant computing device, the first payment request message comprising first customer data and first merchant data;

storing, by the proxy server, a first set of rules includingi) a merchant does have a subscription to an authentication service,ii) a transaction is not an online transaction, andiii) an issuer does not have a subscription to the authentication service;

determining from the first payment request message, at the proxy server, that at least one of the first set of rules is satisfied;

transmitting the payment request message from the proxy server to the first issuer computing device based on the determination that at least one of the first set of rules is satisfied;

receiving a second payment request message at the proxy server from the second merchant computing device, the second payment request message comprising second customer data and second merchant data, the second merchant data including a subscription flag;

storing, by the proxy server, a second set of rules includingi) a merchant does not have a subscription to the authentication service based on the merchant data,i) a transaction is an online transaction, andii) an issuer does have a subscription to the authentication service;

determining from the second payment request message, at the proxy server, that the second set of rules are satisfied;

generating an authentication request message at the proxy server based on the determination that the second set of rules are satisfied;

holding the second payment request message at the proxy server based on the generation of the authentication request message;

sending the authentication request message from the proxy server to the second issuer computing device while the second payment request message is held at the proxy server;

receiving an authentication response message from the second issuer computing device at the proxy server in response to sending the authentication request message, the authentication response message comprising an indication of whether a holder of an account is the second customer and an issuer certificate;

generating, by the proxy server, a modified payment request message by including in the held second payment request message, the issuer certificate and the indication of whether the holder of the account is the second customer; and

transmitting the modified payment request message from the proxy server to the second issuer computing device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method is provided. The method includes receiving a request message, the request message relating to a transaction between a first client and a second client, the request message including first client data and second client data, the first client data identifying an account to be used by the first client in the transaction, the second client data indicating if the second client is subscribed to a service. The method further includes determining if the second client is subscribed to the service, and generating an authentication request message if the second client is not subscribed to the service, the authentication request message requesting confirmation that a holder of the account is the first client. The method further includes sending the authentication request message, and receiving an authentication response message from the external server in response, the authentication response message including an indication whether the holder is the first client.

35 Citations

View as Search Results

14 Claims

1. A method performed using a proxy server communicating between a first merchant computing device, a second merchant computing device, a first issuer computing device, and a second issuer computing device, the method comprising:
- receiving a first payment request message at the proxy server from the first merchant computing device, the first payment request message comprising first customer data and first merchant data;
  
  storing, by the proxy server, a first set of rules includingi) a merchant does have a subscription to an authentication service,ii) a transaction is not an online transaction, andiii) an issuer does not have a subscription to the authentication service;
  
  determining from the first payment request message, at the proxy server, that at least one of the first set of rules is satisfied;
  
  transmitting the payment request message from the proxy server to the first issuer computing device based on the determination that at least one of the first set of rules is satisfied;
  
  receiving a second payment request message at the proxy server from the second merchant computing device, the second payment request message comprising second customer data and second merchant data, the second merchant data including a subscription flag;
  
  storing, by the proxy server, a second set of rules includingi) a merchant does not have a subscription to the authentication service based on the merchant data,i) a transaction is an online transaction, andii) an issuer does have a subscription to the authentication service;
  
  determining from the second payment request message, at the proxy server, that the second set of rules are satisfied;
  
  generating an authentication request message at the proxy server based on the determination that the second set of rules are satisfied;
  
  holding the second payment request message at the proxy server based on the generation of the authentication request message;
  
  sending the authentication request message from the proxy server to the second issuer computing device while the second payment request message is held at the proxy server;
  
  receiving an authentication response message from the second issuer computing device at the proxy server in response to sending the authentication request message, the authentication response message comprising an indication of whether a holder of an account is the second customer and an issuer certificate;
  
  generating, by the proxy server, a modified payment request message by including in the held second payment request message, the issuer certificate and the indication of whether the holder of the account is the second customer; and
  
  transmitting the modified payment request message from the proxy server to the second issuer computing device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method according to claim 1, whereinthe second customer data indicates that the holder of the account has a subscription to the authentication service.
  - 3. The method according to claim 1, further comprising:
    - generating a transaction request message at a customer device, the transaction request message comprising the second customer data;
      
      sending the transaction request message from the customer device to the second merchant computing device; and
      
      generating the second payment request message at the second merchant computing device based on the transaction request message and sending the second payment request message from the second merchant computing device to the proxy server.
  - 4. The method according to claim 1, the method further comprising:
    - generating a verification request message at the second issuer computing device based on verification data stored in association with the second customer data by the second issuer computing device, the verification data identifying a verification device of the holder of the account, the verification request message requesting password data for verification;
      
      sending the verification request message from the second issuer computing device to the verification device and outputting a password request message for the password data from the verification device to a user of the verification device;
      
      receiving an input at the verification device from the user of the verification device and sending the input from the verification device to the second issuer computing device; and
      
      determining that the input matches a password identified in the verification data;
      
      based on the determination that the input matches the password, generating the authentication response message including the indication at the second issuer computing device; and
      
      sending the authentication response message from the second issuer computing device to the proxy server.
  - 5. The method according to claim 4, further comprising:
    - authorizing the transaction at the second issuer computing device based on the modified payment request message.
  - 6. The method according to claim 5, further comprising generating a receipt message at the second issuer computing device, the receipt message indicating whether or not the transaction has been authorized.
  - 7. The method according to claim 1, wherein the proxy server is an acquirer server associated with an acquirer, the acquirer being an administrator of a merchant account associated with the second merchant computing device.
  - 8. The method according to claim 1, wherein the proxy server is a payment network server, wherein the payment network server is in communication with an acquirer server associated with an acquirer, and wherein the acquirer is an administrator of a merchant account associated with the second merchant computing device.

9. A proxy server communicating between a first merchant computing device, a second merchant computing device, a first issuer computing device, and a second issuer computing device, the proxy server comprising:
- at least one processor; and
  
  at least one memory including computer program code that when executed by the at least one processor, causes the at least one processor to perform the steps of;
  
  receiving, at the proxy server, a first payment request message from the first merchant computing device, the first payment request message comprising first customer data and first merchant data,storing, by the proxy server, a first set of rules includingi) a merchant does have a subscription to an authentication service,ii) a transaction is not an online transaction, andiii) an issuer does not have a subscription to the authentication service;
  
  determining, at the proxy server, from the first payment request message that at least one of the first set of rules is satisfied;
  
  transmitting the payment request message from the proxy server to the first issuer computing device based on the determination that at least one of the first set of rules is satisfied;
  
  receiving, at the proxy server, a second payment request message from the second merchant computing device, the second payment request message comprising second customer data and second merchant data, the second merchant data including a subscription flag;
  
  storing, by the proxy server, a second set of rules includingi) a merchant does not have a subscription to the authentication service based on the merchant data,ii) a transaction is an online transaction, andiii) an issuer does have a subscription to the authentication service;
  
  determining, at the proxy server, from the second payment request message that the second set of rules are satisfied;
  
  generating, by the proxy server, an authentication request message based on the determination that the second set of rules are satisfied;
  
  holding the second payment request message at the proxy server based on the generation of the authentication request message;
  
  sending the authentication request message from the proxy server to the second issuer computing device while the second payment request message is held at the proxy server;
  
  receiving an authentication response message at the proxy server from the second issuer computing device in response to sending the authentication request message, the authentication response message comprising an indication of whether a holder of an account is the second customer and including an issuer certificate;
  
  generating, by the proxy server, a modified payment request message by including in the held second payment request message, the issuer certificate and the indication of whether the holder of the account is the second customer; and
  
  transmitting the modified payment request message from the proxy server to the second issuer computing device.
- View Dependent Claims (10)
- - 10. The proxy server according to claim 9, wherein the second customer data indicates that the holder of the account has a subscription to the authentication service.

11. A system comprising:
- a proxy server communicating between a first merchant computing device, a second merchant computing device, a first issuer computing device, and a second issuer computing device, the proxy server comprising;
  
  at least one processor; and
  
  at least one memory including computer program code that when executed by the at least one processor, causes the at least one processor to perform the steps of;
  
  receiving, at the proxy server, a first payment request message from the first merchant computing device, the first payment request message comprising first customer data and first merchant data;
  
  storing, by the proxy server, a first set of rules includingi) a merchant does have a subscription to an authentication service,ii) a transaction is not an online transaction, andiii) an issuer does not have a subscription to the authentication service;
  
  determining, at the proxy server, from the first payment request message that at least one of the first set of rules is satisfied;
  
  transmitting the payment request message from the proxy server to the first issuer computing device based on the determination that at least one of the first set of rules is satisfied;
  
  receiving, at the proxy server, a second payment request message from the merchant computing device, the second payment request message comprising second customer data and second merchant data, the second merchant data including a subscription flag;
  
  storing, by the proxy server, a second set of rules includingi) a merchant does not have a subscription to the authentication service based on the merchant data,ii) a transaction is an online transaction, andiii) an issuer does have a subscription to the authentication service;
  
  determining, at the proxy server, from the second payment request message that the second set of rules are satisfied;
  
  generating, by the proxy server, an authentication request message based on the determination that the second set of rules are satisfied;
  
  holding the second payment request message at the proxy server based on the generation of the authentication request message;
  
  sending the authentication request message to the second issuer computing device while the second payment request message is held at the proxy server;
  
  receiving an authentication response message at the proxy server from the second issuer computing device in response to sending the authentication request message, the authentication response message comprising an indication of whether a holder of an account is the second customer and including an issuer certificate;
  
  generating, by the proxy server, a modified payment request message by including in the held second payment request message, the issuer certificate and the indication of whether the holder of the account is the customer; and
  
  transmitting the modified payment request message from the proxy server to the second issuer computing device; and
  
  a customer computing device associated with a customer, wherein the customer computing device comprises a customer computing device memory including computer program code that, when executed by a customer computing device processor, causes the customer computing device processor to perform the step of generating a transaction request message comprising the second customer data.
- View Dependent Claims (12, 13)
- - 12. The system according to claim 11, further comprising:
    - the second merchant computing device associated with a merchant,wherein, when the computer program code included in the customer computing device memory is executed by the customer computing device processor, the computer program code included in the customer computing device memory causes the customer computing device processor to perform the step of sending the transaction request message to the second merchant computing device, andwherein the second merchant computing device comprises a second merchant computing device memory including computer program code that, when executed by a second merchant computing device processor, causes the second merchant computing device processor to perform the steps of;
      
      i) receiving the transaction request message from the customer computing device,ii) generating the second payment request message based on the transaction request message, andiii) sending the second payment request message to the proxy server.
  - 13. The system according to claim 11, further comprising:
    - the second issuer computing device, wherein the second issuer computing device comprises a second issuer computing device memory including computer program code that, when executed by a second issuer computing device processor, causes the second issuer computing device processor to perform the steps of;
      
      receiving the authentication request message from the proxy server, the authentication request message further comprising the second customer data from the second payment request message;
      
      storing verification data in association with the second customer data; and
      
      generating a verification request message based on the verification data, the verification request requesting password data for verification.

14. Non-transitory computer-readable storage media having computer-executable instructions embodied thereon, the computer-executable instructions executable by at least one processor of a proxy server, the proxy server communicating between a first merchant computing device, a second merchant computing device, a first issuer computing device, and a second issuer computing device, wherein, when executed by the at least one processor, the computer-executable instructions cause the processor to perform the steps of:
- receiving, at the proxy server, a first payment request message from the first merchant computing device, the first payment request message comprising first customer data and first merchant data, storing, by the proxy server, a first set of rules includingi) a merchant does have a subscription to an authentication service,ii) a transaction is not an online transaction, andiii) an issuer does not have a subscription to the authentication service;
  
  determining, at the proxy server, from the first payment request message that at least one of the first set of rules is satisfied;
  
  transmitting the payment request message from the proxy server to the first issuer computing device based on the determination that at least one of the first set of rules is satisfied;
  
  receiving, at the proxy server, a second payment request message from the second merchant computing device, the second payment request message comprising second customer data and second merchant data, the second merchant data including a subscription flag;
  
  storing, by the proxy server, a second set of rules includingi) a merchant does not have a subscription to the authentication service based on the merchant data,ii) a transaction is an online transaction, andiii) an issuer does have a subscription to the authentication service;
  
  determining, at the proxy server, from the second payment request message that the second set of rules are satisfied;
  
  generating, by the proxy server, an authentication request message at the proxy server based on the determination that the second set of rules are satisfied;
  
  holding the second payment request message at the proxy server based on the generation of the authentication request message;
  
  sending the authentication request message to the second issuer computing device from the proxy server while the second payment request message is held at the proxy server;
  
  receiving an authentication response message at the proxy server from the second issuer computing device in response to sending the authentication request message, the authentication response message comprising an indication of whether a holder of an account is the second customer and including an issuer certificate;
  
  generating, by the proxy server, a modified payment request message by including in the second held payment request message, the issuer certificate and the indication of whether the holder of the account is the second customer; and
  
  transmitting the modified payment request message from the proxy server to the second issuer computing device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Mastercard Asia/Pacific Pte. Ltd (MasterCard Incorporated)
Original Assignee
Mastercard Asia/Pacific Pte. Ltd (MasterCard Incorporated)
Inventors
Seshadri, Tadepally Venkata, Murali, Manohar, Malhotra, Sandeep
Primary Examiner(s)
Nilforoush, Mohammad A.
Assistant Examiner(s)
Getachew, Wodajo

Application Number

US14/614,950
Publication Number

US 20150220890A1
Time in Patent Office

1,720 Days
Field of Search

705 64
US Class Current
CPC Class Codes

G06Q 20/4014   Identity check for transact...

G06Q 20/409   Device specific authenticat...

G06Q 20/425   using two different network...

H04L 63/0281   Proxies

H04L 67/01   Protocols

H04L 67/1097   for distributed storage of ...

H04L 67/53   using third party service p...

H04L 67/562   Brokering proxy services

Method and corresponding proxy server, system, computer-readable storage medium and computer program

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

35 Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

Method and corresponding proxy server, system, computer-readable storage medium and computer program

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

35 Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links